Trusted/secure boot?

According to the specs, the i.MX 8 has space for four public keys for signing the bootloader, will it be possible for an end-user to write a custom key and then lock the fuses? I haven’t found any clear answers on this and it is a thing that I would be looking for in a phone that’s meant to be more secure than current flagship Android phones (which don’t have a rewritable bootloader, but can lock the booted kernel image to custom keys).

1 Like